Lucene search
K

8 matches found

securityvulns
securityvulns
added 2014/10/16 12:0 a.m.67 views

[SECURITY] [DSA 2982-1] ruby-activerecord-3.2 security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2982-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff July 19, 2014 http://www.debian.org/security/faq -...

7.5CVSS1AI score0.04278EPSS
Exploits0
OpenVAS
OpenVAS
added 2014/08/23 12:0 a.m.31 views

Fedora Update for rubygem-activerecord FEDORA-2014-8089

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.5AI score0.04278EPSS
Exploits0References2
Debian
Debian
added 2014/07/19 10:9 a.m.28 views

[SECURITY] [DSA 2982-1] ruby-activerecord-3.2 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2982-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff July 19, 2014 http://www.debian.org/security/faq -...

7.5CVSS6.8AI score0.04278EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2014/07/14 4:15 p.m.29 views

Moderate: Red Hat Security Advisory: ruby193-rubygem-activerecord security update

Updated ruby193-rubygem-activerecord packages that fix one security issue are now available for Red Hat Software Collections 1. The Red Hat Security Response Team has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detaile...

7.5CVSS7.2AI score0.04278EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2014/07/07 11:1 a.m.28 views

CVE-2014-3482

SQL injection vulnerability in activerecord/lib/activerecord/connectionadapters/postgresqladapter.rb in the PostgreSQL adapter for Active Record in Ruby on Rails 2.x and 3.x before 3.2.19 allows remote attackers to execute arbitrary SQL commands by leveraging improper bitstring quoting...

7.5CVSS7.4AI score0.04278EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2014/07/07 10:0 a.m.35 views

CVE-2014-3482

SQL injection vulnerability in activerecord/lib/activerecord/connectionadapters/postgresqladapter.rb in the PostgreSQL adapter for Active Record in Ruby on Rails 2.x and 3.x before 3.2.19 allows remote attackers to execute arbitrary SQL commands by leveraging improper bitstring quoting...

7.5CVSS8.3AI score0.04278EPSS
Exploits0
CVE
CVE
added 2014/07/07 10:0 a.m.89 views

CVE-2014-3482

CVE-2014-3482 is a SQL-injection flaw in the PostgreSQL adapter of ActiveRecord (Rails) for Rails 2.x and 3.x before 3.2.19. The root cause is improper bitstring quoting in activerecord/lib/active_record/connection_adapters/postgresql_adapter.rb, allowing remote ARBITRARY SQL execution. Public ad...

7.5CVSS8.3AI score0.04278EPSS
Exploits0References8Affected Software2
RubySec
RubySec
added 2014/07/02 12:0 a.m.28 views

CVE-2014-3482 rubygem-activerecord: SQL injection vulnerability in 'bitstring' quoting

SQL injection vulnerability in activerecord/lib/activerecord/connectionadapters/postgresqladapter.rb in the PostgreSQL adapter for Active Record in Ruby on Rails 2.x and 3.x before 3.2.19 allows remote attackers to execute arbitrary SQL commands by leveraging improper bitstring quoting. It was...

7.5CVSS8.2AI score0.04278EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder